$ rpki-client -vvf rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft File: os0QpH7XI-HEi19Q1oDPT2f8sdM.mft (raw, json) Hash identifier: 63xn4D2jZadH8OHfw/P/7oQJomgbF8BMOP5zGLVHZNQ= Subject key identifier: A4:C3:6B:02:8B:00:EC:98:15:60:90:35:34:73:ED:27:D4:66:58:A3 Authority key identifier: A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 Certificate issuer: /CN=A9194C0D/serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Certificate serial: 019E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft Manifest number: 0199 Signing time: Mon 03 Nov 2025 03:29:56 +0000 Manifest this update: Mon 03 Nov 2025 03:29:56 +0000 Manifest next update: Mon 10 Nov 2025 03:29:56 +0000 Files and hashes: 1: os0QpH7XI-HEi19Q1oDPT2f8sdM.crl (hash: Z52BatGBwqgvQfqQXPKIsaBBvCg3cbtCetWez4jmIms=) 2: 9D5E6AF8600F11EE98AFFB11C4F9AE02.roa (hash: hWA7kF3Oziowk6plagmWWdYlpMzFQ5tSTS/vk5MWxmo=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Nov 2025 03:29:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 414 (0x19e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194C0D, serialNumber=A2CD10A47ED723E1C48B5F50D680CF4F67FCB1D3 Validity Not Before: Nov 3 03:29:56 2025 GMT Not After : Nov 10 03:29:56 2025 GMT Subject: CN=690821b4-6fb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f1:27:c0:90:35:69:49:5d:3b:f2:ae:d1:e4: 87:6b:1e:e4:0f:94:5a:c0:f0:4e:36:f0:57:f1:bf: c8:81:40:86:f1:70:63:c5:cd:3e:71:ee:6f:c4:73: 4e:e0:2b:2c:ef:96:f9:e4:99:4a:df:4d:ee:03:aa: 3b:f0:9b:58:52:3e:6e:c4:6a:25:a6:40:14:b1:79: d2:29:34:45:36:b1:c1:9b:4f:08:bc:37:4a:f4:ba: 34:9e:df:44:11:4b:03:75:20:88:b2:bb:66:d1:1d: 61:46:19:b6:7a:04:1a:dc:61:1b:07:41:4b:8e:30: 77:59:21:6f:d5:57:2b:48:e6:cf:67:61:e9:ac:b8: 2c:a6:a6:03:5d:4a:9b:48:49:54:f8:b9:1d:88:c3: 6f:87:3c:ea:b8:12:49:d9:4a:ff:9e:a4:bd:d7:b9: e1:a9:56:3e:2c:2d:1e:78:b6:84:37:48:25:83:a1: 4c:cf:30:44:40:ee:c6:50:96:c0:6a:bd:af:99:fe: 50:6b:6f:22:5b:3a:57:63:45:87:56:9e:86:90:c4: 74:4e:f5:02:ae:7f:97:f3:e4:04:9a:7b:26:9c:d0: 85:08:2a:e6:1b:72:5b:0c:a5:28:30:bd:14:28:3f: fe:c9:08:e0:2a:3b:60:d7:46:cb:38:4a:44:16:5b: d0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:C3:6B:02:8B:00:EC:98:15:60:90:35:34:73:ED:27:D4:66:58:A3 X509v3 Authority Key Identifier: keyid:A2:CD:10:A4:7E:D7:23:E1:C4:8B:5F:50:D6:80:CF:4F:67:FC:B1:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/os0QpH7XI-HEi19Q1oDPT2f8sdM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194C0D/A470785E575411EE940CD954C4F9AE02/os0QpH7XI-HEi19Q1oDPT2f8sdM.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:48:d4:c4:60:52:eb:82:fb:30:a4:53:e6:0d:39:5d:2f:bd: 33:2a:75:de:cb:4a:e6:95:53:7c:6d:c6:eb:98:7a:2e:76:ef: af:f0:ef:c2:34:8c:b0:87:4d:56:0f:b9:aa:ac:6e:0f:c0:b9: ea:20:30:b0:95:91:75:00:df:ff:de:24:33:5e:78:17:1c:9d: 61:22:41:8b:d2:60:87:34:06:ae:38:2d:68:2a:a9:0b:55:e2: f3:20:48:f6:98:3d:3d:da:22:db:37:be:04:f1:9c:89:85:0a: ac:92:00:d0:34:e9:11:7c:b9:5b:21:9f:1e:12:94:0e:de:4b: 10:75:5c:92:c4:00:30:33:d9:b6:4a:62:b4:14:3d:95:b2:42: 07:36:2c:fb:98:bb:8f:fb:0f:57:84:9c:98:23:12:63:ef:b2: ab:49:f7:c1:c1:cb:76:b3:eb:9f:10:ee:46:5b:13:bf:1b:b2: b8:b1:4e:94:f1:90:38:2c:9f:cf:67:aa:cf:da:01:e3:ad:8f: 55:41:c6:34:a4:9d:5c:4a:17:99:ac:e9:a1:14:1d:f5:ce:38: dc:49:35:fc:86:9f:a6:f8:eb:47:91:53:00:a1:d8:d1:c9:be: ca:c9:74:51:3e:5f:5b:8e:db:5e:f6:9c:3d:bb:8d:92:00:35: 62:1c:43:74 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAZ4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTRDMEQxMTAvBgNVBAUTKEEyQ0QxMEE0N0VENzIzRTFDNDhCNUY1MEQ2ODBDRjRG NjdGQ0IxRDMwHhcNMjUxMTAzMDMyOTU2WhcNMjUxMTEwMDMyOTU2WjAYMRYwFAYD VQQDEw02OTA4MjFiNC02ZmIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp/EnwJA1aUldO/Ku0eSHax7kD5RawPBONvBX8b/IgUCG8XBjxc0+ce5vxHNO 4Css75b55JlK303uA6o78JtYUj5uxGolpkAUsXnSKTRFNrHBm08IvDdK9Lo0nt9E EUsDdSCIsrtm0R1hRhm2egQa3GEbB0FLjjB3WSFv1VcrSObPZ2HprLgspqYDXUqb SElU+LkdiMNvhzzquBJJ2Ur/nqS917nhqVY+LC0eeLaEN0glg6FMzzBEQO7GUJbA ar2vmf5Qa28iWzpXY0WHVp6GkMR0TvUCrn+X8+QEmnsmnNCFCCrmG3JbDKUoML0U KD/+yQjgKjtg10bLOEpEFlvQGQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFKTDawKL AOyYFWCQNTRz7SfUZlijMB8GA1UdIwQYMBaAFKLNEKR+1yPhxItfUNaAz09n/LHT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NEMwRC9BNDcwNzg1RTU3 NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEktSEVpMTlRMW9EUFQyZjhz ZE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL29zMFFwSDdYSS1IRWkxOVExb0RQVDJmOHNkTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NEMwRC9BNDcwNzg1RTU3NTQxMUVFOTQwQ0Q5NTRDNEY5QUUwMi9vczBRcEg3WEkt SEVpMTlRMW9EUFQyZjhzZE0ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBSSNTEYFLrgvswpFPmDTldL70zKnXey0rmlVN8bcbrmHoudu+v8O/C NIywh01WD7mqrG4PwLnqIDCwlZF1AN//3iQzXngXHJ1hIkGL0mCHNAauOC1oKqkL VeLzIEj2mD092iLbN74E8ZyJhQqskgDQNOkRfLlbIZ8eEpQO3ksQdVySxAAwM9m2 SmK0FD2VskIHNiz7mLuP+w9XhJyYIxJj77KrSffBwct2s+ufEO5GWxO/G7K4sU6U 8ZA4LJ/PZ6rP2gHjrY9VQcY0pJ1cSheZrOmhFB31zjjcSTX8hp+m+OtHkVMAodjR yb7KyXRRPl9bjtte9pw9u42SADViHEN0 -----END CERTIFICATE-----Generated at Tue Nov 4 19:05:35 2025 by rpki-client